*While email is generally an unsecure form of communication, Pathlight Community Services is compliant with all HIPAA guidelines to ensure PHI (Protected Health Information) is kept secure through our mail servers.
All correspondence to a mipath.org email account requires SMTP over TLS, which encrypts all data in transit to our mail servers (i.e. we do not accept plaintext email).
We have a BAA with our mail vendor to ensure all data is encrypted at rest under HIPAA guidelines.
In addition, all work devices are encrypted to provide the same at-rest encryption